Share:

In a recent security advisory from June 5th, 2014, six new vulnerabilities were disclosed on OpenSSL’s website. It’s important that these news OpenSSL flaws are being discovered quickly and getting fixed. But these new discoveries are indicative of other potential devastating security flaws that remain buried in the labyrinth of OpenSSL code. Once again, the discoveries expose the risk of using OpenSSL to process SSL traffic for
your mission critical infrastructure and applications.Read more

Share:

The flensing began rather quickly with the OpenBSD team cleaning up 90,000 lines of code within a week of Heartbleed. OpenSSL then got royally fṓṝked by OpenBSD and LibreSSL was born. The divergence between OpenSSL and LibreSSL continues while OpenSSL fights against change and LibreSSL tries to modernize and flense the OpenSSL codebase.

Share:

Heartbleed, the recent security flaw found in OpenSSL, is just one of many flaws discovered in this open source code base. Many load balancer providers have bolted on OpenSSL to manage SSL traffic through their product. Here are five questions you should ask to ensure you are not at risk for more OpenSSL flaws: Read more